Author
Message
Br1ck3r DD-WRT Novice Joined: 20 Jul 2021 Posts: 2
Posted: Mon Oct 18, 2021 7:09 Post subject: Block incoming connections via iptables
Hello everyone,
I would like to block all the incoming connections on a specific device that is connected via ethernet on my DD-WRT (which is used to create a separate subnet for trusted devices).
Let's say that I want to block all the incoming connections for my device which has IP 192.168.1.3, how can I do it via iptables on the DD-WRT interface?
Thanks
Back to top
Sponsor
Alozaros DD-WRT Guru Joined: 16 Nov 2015 Posts: 6445 Location: UK, London, just across the river..
Posted: Mon Oct 18, 2021 7:42 Post subject:
https://forum.dd-wrt.com/wiki/index.php/Iptables _________________Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Back to top
egc DD-WRT Guru Joined: 18 Mar 2014 Posts: 12904 Location: Netherlands
Posted: Mon Oct 18, 2021 9:25 Post subject:
Moved this thread to a more appropriate forum
Please read the forum guidelines with many helpful pointers about where and what to post, what to download and many more helpful tips:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
You are not giving the required information like router model build number network setup to give you optimal support
Depending on the above all incoming connections are already blocked by default, that is what the firewall is for. _________________ Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read): https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Back to top
Wildlion DD-WRT Guru Joined: 24 May 2016 Posts: 1416
Posted: Wed Oct 20, 2021 21:30 Post subject:
egc wrote:
Depending on the above all incoming connections are already blocked by default, that is what the firewall is for.
with the caveat of device to device will not work since they may not hit the routers firewall.
Back to top
Alozaros DD-WRT Guru Joined: 16 Nov 2015 Posts: 6445 Location: UK, London, just across the river..
Posted: Thu Oct 21, 2021 5:54 Post subject:
Wildlion wrote: egc wrote:
Depending on the above all incoming connections are already blocked by default, that is what the firewall is for.
with the caveat of device to device will not work since they may not hit the routers firewall.
in other words, you cannot block connections on your LAN to LAN side, but only WAN to LAN , LAN to WAN sides..
google SPI firewall.. _________________Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Back to top